July 19, 2023

On July 19, 2023, OpenSSH, the most commonly used implementation of the Secure Shell (SSH) protocol, issued an update to tackle the latest identified threat, CVE-2023-38408.

July 19, 2023

GE has recently patched over a dozen vulnerabilities in its Cimplicity HMI/SCADA product that bear striking similarities to industrial control system (ICS) attacks executed by the infamous Russian hacker group, Sandworm.

July 19, 2023

Citrix has recently addressed several vulnerabilities, including a critical zero-day, CVE-2023-3519, that has been leveraged in attacks.

July 18, 2023

Citrix is warning customers of a critical vulnerability (CVE-2023-3519) in its NetScaler ADC and NetScaler Gateway products.

July 18, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has instructed federal agencies to address zero-day vulnerabilities impacting Windows and Office products.

July 17, 2023

Hackers are extensively exploiting a significant vulnerability in the WooCommerce Payments plugin, a popular tool used on WordPress sites to accept credit and debit card payments.

July 17, 2023

Adobe has released patches for a critical vulnerability in its ColdFusion software that could be exploited to execute arbitrary code.

July 13, 2023

Cisco's SD-WAN vManage, a cloud-based solution used by organizations for managing distributed networks across multiple locations, has been found to contain a critical vulnerability.

July 13, 2023

Zimbra, the company behind Zimbra Collaboration Suite (ZCS), is asking its customers to manually update their systems due to an actively exploited zero-day vulnerability.

July 13, 2023

The BlackLotus UEFI bootkit, a malware that targets Windows systems and can bypass Secure Boot on fully patched Windows 11 installations, has had its source code leaked online.